Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/323830333a383639303a3130303a3a2f34302d3430203d3e20323732383839.roa
File: 323830333a383639303a3130303a3a2f34302d3430203d3e20323732383839.roa (raw, json)
Hash identifier: S5J+HjY/3+6RCHdKa5ojNGxaBX3yuiDsmp8ySd9LgQ4=
Subject key identifier: 32:B1:40:69:5A:F7:BC:D6:B5:CF:4F:8C:67:F4:52:50:C6:F2:91:AA
Certificate issuer: /CN=38112395A631DE9A8D5233FE171145D3E5F6FCFD
Certificate serial: 25A70EF08985AB58E8DE5EE1F886B83F68A75302
Authority key identifier: 38:11:23:95:A6:31:DE:9A:8D:52:33:FE:17:11:45:D3:E5:F6:FC:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/323830333a383639303a3130303a3a2f34302d3430203d3e20323732383839.roa
Signing time: Mon 14 Oct 2024 02:40:01 +0000
ROA not before: Mon 14 Oct 2024 02:35:01 +0000
ROA not after: Mon 13 Oct 2025 02:40:01 +0000
asID: 272889
IP address blocks: 2803:8690:100::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:a7:0e:f0:89:85:ab:58:e8:de:5e:e1:f8:86:b8:3f:68:a7:53:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38112395A631DE9A8D5233FE171145D3E5F6FCFD
Validity
Not Before: Oct 14 02:35:01 2024 GMT
Not After : Oct 13 02:40:01 2025 GMT
Subject: CN=32B140695AF7BCD6B5CF4F8C67F45250C6F291AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2c:83:e4:53:1c:58:91:1f:a3:04:20:e8:de:
dd:4a:52:e4:51:d9:a6:a1:b1:9b:d7:c9:e5:31:95:
01:b3:cd:1a:39:ac:84:12:b9:b1:ca:6d:63:92:5e:
cc:68:12:ca:0d:c5:15:0c:bf:a0:f5:e7:20:83:2b:
d8:b2:f8:b9:98:4d:14:11:ab:cc:6a:74:0a:33:e7:
e0:5b:1b:88:11:4c:63:38:6d:a8:d1:1b:d7:7c:db:
15:d9:d0:04:49:8b:82:54:80:a4:45:ca:17:89:b0:
7a:c0:bb:0d:c4:ac:f7:62:fb:43:46:d0:e0:49:8f:
37:54:5e:0e:b4:cf:17:c9:b3:db:8c:1e:8c:05:68:
ea:b1:09:20:17:83:b9:34:26:55:71:2b:57:fd:33:
09:96:02:3b:bc:35:27:a9:af:c4:9e:59:a7:69:80:
89:8d:40:2f:9f:2b:1b:4d:95:ce:89:eb:54:1e:f6:
b0:1b:2e:52:28:33:50:51:74:b8:d0:42:8d:3d:78:
38:1a:69:ee:75:65:1f:7e:aa:1c:2f:b8:a7:23:02:
2d:71:8d:68:62:6c:82:d7:da:5e:58:8b:8a:c8:92:
a6:54:9d:06:1a:ef:09:7b:7d:2b:7a:a7:c5:90:eb:
fb:12:29:ca:59:bd:46:ba:32:dd:fa:4a:8f:3e:99:
6a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B1:40:69:5A:F7:BC:D6:B5:CF:4F:8C:67:F4:52:50:C6:F2:91:AA
X509v3 Authority Key Identifier:
keyid:38:11:23:95:A6:31:DE:9A:8D:52:33:FE:17:11:45:D3:E5:F6:FC:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/38112395A631DE9A8D5233FE171145D3E5F6FCFD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA1BF6AB06215D88769D822920514D37F14C0CD8D44117E64F0F542295A1AA29/0/323830333a383639303a3130303a3a2f34302d3430203d3e20323732383839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8690:100::/40
Signature Algorithm: sha256WithRSAEncryption
14:4f:19:90:ff:31:2f:6c:eb:d1:f6:c6:f2:92:a9:3d:6c:a3:
b0:b2:9c:b7:9a:3e:2b:6c:ab:4d:09:a2:be:63:39:e6:38:62:
66:f8:ed:ac:44:d1:50:33:d5:ae:22:61:68:d9:5e:bf:a4:50:
c8:2c:91:cd:8f:ab:2a:9d:6f:ca:b8:7d:d5:cc:b0:2b:db:b4:
56:31:a6:6e:23:c7:b9:46:eb:05:5e:bd:be:ba:37:4f:95:05:
de:8c:b2:dc:4b:76:66:c6:4b:eb:b9:9c:94:e2:04:0b:d6:2b:
fb:2f:32:08:31:7b:d9:05:fc:42:13:b0:8c:be:bc:9d:e9:be:
92:45:b7:46:47:7b:b8:d3:f6:16:7c:2b:ba:3b:23:f2:9b:47:
6a:aa:b5:8f:31:46:92:c6:20:27:b8:ee:3e:09:87:25:e1:ac:
0f:07:2f:20:06:2e:52:bf:ec:1b:f4:21:8d:57:40:3b:f3:47:
51:d2:63:b6:9d:be:de:f0:d6:bf:61:07:b2:24:96:c8:ef:c0:
8e:21:f7:c4:9b:58:79:a7:27:6e:6f:f6:05:b4:70:e9:28:b4:
ce:4f:b3:fc:d6:36:ca:88:a4:55:da:0e:fb:b5:5b:4c:a1:bf:
0d:b9:50:b5:e6:16:d8:45:b3:92:ea:05:7d:0b:79:80:f8:ad:
c0:35:b3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:56:38 2025 by rpki-client